Linux Kernel Local Privilege Escalation – "Copy Fail" (CVE-2026-31431)

Scope: Linux Kernel (All Major Distributions – Kernels Built Since 2017)

Severity: High

Read More

Microsoft Entra ID Agent ID Administrator Role – Service Principal Takeover

Scope: Microsoft Entra ID (All Tenants Using Agent Identities)

Severity: High

Read More

GitHub Enterprise Server Command Injection RCE via Git Push (CVE-2026-3854)

Scope: GitHub Enterprise Server / GitHub Enterprise Cloud

Severity: High

Read More

Apache ActiveMQ Remote Code Execution via Improper Input Validation (CVE-2026-34197)

Scope: Apache ActiveMQ

Severity: Red

Read More

PAN-OS User-ID Authentication Portal Buffer Overflow Zero-Day Under Active Exploitation (CVE-2026-0300)

Scope: Palo Alto Networks PAN-OS (PA-Series and VM-Series Firewalls)

Severity: Red

Read More

Cloudz RAT "Pheno" Plugin Hijacking Windows Phone Link to Steal OTPs and Credentials

Scope: Microsoft Windows Phone Link (Windows 10 and 11)

Severity: High

Read More